Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/27vXu6wEBd3v2qgvTiY5UA5Q46A.roa
File:                     27vXu6wEBd3v2qgvTiY5UA5Q46A.roa (raw, json)
Hash identifier:          vPatg2XsS6Vp2itcq3rMIfRhWtlhtXOMPhIaIGQibV0=
Subject key identifier:   DB:BB:D7:BB:AC:04:05:DD:EF:DA:A8:2F:4E:26:39:50:0E:50:E3:A0
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0594
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/27vXu6wEBd3v2qgvTiY5UA5Q46A.roa
Signing time:             Thu 27 Jul 2023 16:58:17 +0000
ROA not before:           Thu 27 Jul 2023 16:58:17 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     9605
IP address blocks:        49.107.128.0/19 maxlen: 19

Validation:               Failed, certificate revoked on Sun 30 Jun 2024 01:52:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1428 (0x594)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: Jul 27 16:58:17 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=DBBBD7BBAC0405DDEFDAA82F4E2639500E50E3A0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:34:1d:d2:dc:9d:f2:ee:fe:aa:6c:f6:36:30:
                    15:b9:b5:e8:98:c1:6d:b0:6c:60:5b:a2:24:75:ff:
                    f2:b5:79:3f:0c:e5:fe:06:f6:fa:37:d9:18:1e:27:
                    bb:3b:1b:07:1f:16:8f:fc:f5:95:bc:d8:69:cc:18:
                    06:11:06:bc:f2:f8:71:4d:a6:43:0a:d7:86:78:c6:
                    f1:21:2e:98:b6:a4:03:59:55:02:fb:6f:fc:2c:ab:
                    34:9b:b4:03:00:12:96:a8:3d:e3:99:c3:25:57:00:
                    e0:8a:82:b2:b5:c9:31:09:90:ee:00:8f:36:84:7d:
                    46:7e:5f:1e:67:96:99:d3:85:55:c4:62:70:36:17:
                    e8:65:e3:d9:fa:dd:3b:ee:fe:95:be:72:65:f4:79:
                    ce:d1:b9:c8:32:ef:9b:a4:6f:2c:2a:2a:f1:8c:36:
                    66:7a:99:6a:91:04:d4:4f:ef:5b:b8:ea:2c:b9:a0:
                    34:8b:27:b8:02:82:fa:06:11:e7:64:a3:fb:7a:e5:
                    93:4c:91:92:23:c9:02:21:37:23:8d:47:2e:29:05:
                    80:c5:fd:8e:b0:7b:a8:89:7a:26:64:30:64:90:f6:
                    23:fb:1d:e2:47:65:b1:c9:33:b5:37:15:57:34:48:
                    7b:c7:14:6e:e9:a3:f6:b7:42:ac:38:0d:ed:17:07:
                    ff:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:BB:D7:BB:AC:04:05:DD:EF:DA:A8:2F:4E:26:39:50:0E:50:E3:A0
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/27vXu6wEBd3v2qgvTiY5UA5Q46A.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.107.128.0/19

    Signature Algorithm: sha256WithRSAEncryption
         16:e8:0f:59:6e:2b:00:c1:e6:5c:78:25:e4:69:8d:f2:41:81:
         fb:d3:f9:8e:ed:48:51:96:2f:ca:5b:c8:d5:a1:8d:2f:12:f4:
         65:32:a3:20:a4:f2:19:40:2b:e9:5c:e9:af:a5:ec:02:75:56:
         06:72:c8:8d:43:c2:e6:c0:61:01:2b:6b:d8:db:6b:f9:29:3c:
         d8:34:b4:0d:88:ec:82:e3:7c:db:eb:bd:96:5f:7d:38:d5:57:
         17:c0:75:87:25:0f:3a:55:0c:0b:36:14:4c:53:a2:62:97:a2:
         b0:6d:90:43:0b:c9:04:bb:aa:f0:6d:45:52:46:ed:c2:9b:e6:
         72:55:70:75:62:f7:bb:b9:62:f7:24:53:73:71:e0:d8:0d:69:
         b2:f0:28:33:d2:5b:63:b3:6d:a5:44:6e:ac:91:36:bd:5b:c1:
         8f:fb:75:09:75:25:d1:f3:77:b2:d0:b0:fc:fd:02:34:44:1c:
         9e:1a:f8:5a:2a:4f:b0:da:ca:60:56:e5:97:0e:e7:13:13:61:
         ec:dd:7d:3e:7d:66:a7:ba:af:8c:9e:60:bf:39:4b:6c:52:c9:
         8e:13:5c:43:86:0e:f3:e0:e9:88:93:c2:a5:46:ef:e6:b1:4e:
         4f:ea:0c:e3:62:9a:e0:c0:a6:7c:30:da:62:d5:35:f8:80:1b:
         e9:d5:60:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 04:02:47 2024 by rpki-client on console-ams.rpki-client.org